Lucene search
F5CVELIST:CVE-2018-15328HistoryDec 12, 2018 - 2:00 p.m.
CVE-2018-15328
2018-12-1214:00:00
f5
www.cve.org
5
EPSS
0.001
Percentile
46.8%
On BIG-IP 14.0.x, 13.x, 12.x, and 11.x, Enterprise Manager 3.1.1, BIG-IQ 6.x, 5.x, and 4.x, and iWorkflow 2.x, the passphrases for SNMPv3 users and trap destinations that are used for authentication and privacy are not handled by the BIG-IP system Secure Vault feature; they are written in the clear to the various configuration files.
CNA Affected
[
{
"product": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator), Enterprise Manager, BIG-IQ Centralized Management, F5 iWorkflow",
"vendor": "F5 Networks, Inc.",
"versions": [
{
"status": "affected",
"version": "BIG-IP 14.0.x, 13.x, 12.x, 11.x"
},
{
"status": "affected",
"version": "EM 3.1.1"
},
{
"status": "affected",
"version": "BIG-IQ 6.x, 5.x, 4.x"
},
{
"status": "affected",
"version": "iWorkflow 2.x"
}
]
}
]Related
f5
f5
BIG-IP SNMP vulnerability CVE-2018-15328
2018-12-11 23:00:00
prion
prion
Design/Logic Flaw
2018-12-12 14:29:00
nvd
nvd
CVE-2018-15328
2018-12-12 14:29:00
cve
cve
CVE-2018-15328
2018-12-12 14:29:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP SNMP vulnerability (K42027747)
2018-12-13 00:00:00